Exploit Database - Logo

SenseSites CommonSense CMS - article.php id Parameter SQL Injection

EDB-ID: 37942 Author: H4ckCity Security Team Published: 2012-01-06
CVE: CVE-2012-5342 Type: Webapps Platform: PHP
Aliases: N/A Advisory/Source: Link Tags: N/A
E-DB Verified: Verified Exploit: Download Exploit Code Download / View Raw Vulnerable App: N/A
« Previous Exploit Next Exploit » 
source: http://www.securityfocus.com/bid/55893/info
  
CommonSense CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
  
Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
  
http://www.example.com/article.php?id=5 [SQL Injection]

Related Exploits

Trying to match CVEs (1): CVE-2012-5342
Trying to match OSVDBs (1): 86237
Other Possible E-DB Search Terms: SenseSites CommonSense CMS
Date D V Title Author
2012-01-06Download Exploit Code Verified SenseSites CommonSense CMS - 'id' Parameter SQL InjectionH4ckCity Se...
2012-01-06Download Exploit Code Verified SenseSites CommonSense CMS - special.php id Parameter SQL InjectionH4ckCity Se...
Menu